Hacking IIS and .NET

Even in the most secure windows environments the communication between development and infrastructure causes issues to slip through the cracks and holes to open on machines. Hopefully, a windows machine running IIS is hardened, but often the misconfiguration of accounts and poorly written .NET code allows attackers to gain information thought to be inaccessible.